$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: S5gcrGBQFGW1WftmLFuUxO9MoxccyO9nupK8EaogM1k= Subject key identifier: 2E:37:E9:EF:11:B5:61:02:34:F7:BA:68:9A:0B:A6:6C:28:1D:7F:18 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 0195 Signing time: Fri 25 Apr 2025 02:36:47 +0000 Manifest this update: Fri 25 Apr 2025 02:36:46 +0000 Manifest next update: Fri 02 May 2025 02:36:46 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: hEEwo5YS2hYOiEefSgX9Govxeba8eOmhMoevj7y6ixU=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: jtm4IGu6ehkk/GhdKICbbynbKgcYNoX0OJfsqwSmMDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Apr 25 02:36:46 2025 GMT Not After : May 2 02:36:46 2025 GMT Subject: CN=680af53e-6688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:44:2f:3f:b8:ad:39:cd:97:ad:bc:c2:f9:61: ec:c2:23:29:93:1d:06:cd:e5:20:7c:6e:60:6c:4f: da:db:6d:8f:81:2f:5d:73:8b:30:28:fa:2a:5c:51: 7a:9d:3a:d4:90:73:bd:b6:3c:1a:7d:7e:43:19:cb: ba:12:cc:e7:c3:a6:7d:ea:ee:26:e5:ec:09:0c:6f: 6e:06:4b:6e:ed:ae:97:3f:ea:45:0a:a0:13:5e:2e: b4:40:d6:4d:ce:e4:fd:8f:86:81:ed:00:ed:0c:52: ed:2b:cf:b7:fb:e8:98:d8:db:38:8b:ac:c9:f9:19: 79:70:7b:75:25:66:5b:1d:aa:33:a3:d6:9c:59:42: c0:db:08:ee:03:27:1c:8a:81:bc:62:4b:1c:46:49: 30:1c:48:06:83:bc:4f:ff:ba:8b:59:0a:5d:c5:2a: 73:99:61:39:26:9a:0c:f9:46:64:c6:e5:2c:3f:72: 70:d9:5a:a1:4f:07:d4:df:78:e3:85:f1:98:54:fc: 27:aa:df:fd:89:58:5d:0c:86:27:49:2c:88:ba:f6: c1:6a:12:48:2e:36:1e:82:d8:13:d4:9e:85:e1:9d: 3d:9b:ce:96:40:bd:3f:85:c0:77:bd:e6:8f:ef:bb: 2c:42:e6:fe:fc:75:ed:24:de:5e:36:3a:8c:21:08: 76:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:37:E9:EF:11:B5:61:02:34:F7:BA:68:9A:0B:A6:6C:28:1D:7F:18 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:48:b9:d9:d3:05:c2:db:cc:a8:fa:c5:d1:62:1e:4d:b3:19: f7:65:c7:8d:b4:91:b8:7d:f2:0d:83:34:c8:83:69:eb:4b:fc: 59:de:35:fd:5d:5f:61:25:5b:8f:2d:1f:6c:bd:18:ed:31:6c: 25:21:c0:58:75:a5:e1:b6:d6:8f:a2:82:07:6c:22:51:55:e2: 14:c0:02:cc:ad:0e:3e:61:14:78:8a:fd:53:d0:67:aa:c1:28: 52:6d:67:9e:6f:52:17:6a:ee:6f:a5:93:4d:e7:d3:38:fb:8b: 80:a8:37:2d:ae:c7:cd:02:64:ea:49:72:44:f3:7d:35:6c:a8: 3b:0b:72:9c:b5:c3:a5:64:85:c2:01:de:c5:a4:3d:d0:28:b4: d9:f7:37:4d:9d:9a:42:7b:a6:60:c3:a1:2b:a1:53:d6:c1:23: 37:16:36:7b:5d:05:e7:90:96:7b:65:20:5a:39:68:bb:e6:b3: cc:b8:7d:92:e4:77:24:51:24:2b:93:5b:85:18:2e:48:d6:fb: 2d:ee:f8:0a:92:de:3a:c4:2e:57:b4:0d:a7:77:1a:6f:9e:37: 4c:0f:7c:45:3b:31:91:27:57:29:eb:e8:4a:84:fd:3d:45:65: 53:65:2c:3d:e2:44:b8:67:e0:21:08:4c:0d:4d:a1:07:0a:32: 3e:cf:54:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjUwNDI1MDIzNjQ2WhcNMjUwNTAyMDIzNjQ2WjAYMRYwFAYD VQQDEw02ODBhZjUzZS02Njg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUQvP7itOc2XrbzC+WHswiMpkx0GzeUgfG5gbE/a222PgS9dc4swKPoqXFF6 nTrUkHO9tjwafX5DGcu6Esznw6Z96u4m5ewJDG9uBktu7a6XP+pFCqATXi60QNZN zuT9j4aB7QDtDFLtK8+3++iY2Ns4i6zJ+Rl5cHt1JWZbHaozo9acWULA2wjuAycc ioG8YkscRkkwHEgGg7xP/7qLWQpdxSpzmWE5JpoM+UZkxuUsP3Jw2VqhTwfU33jj hfGYVPwnqt/9iVhdDIYnSSyIuvbBahJILjYegtgT1J6F4Z09m86WQL0/hcB3veaP 77ssQub+/HXtJN5eNjqMIQh2fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC436e8R tWECNPe6aJoLpmwoHX8YMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVSLnZ0wXC28yo+sXRYh5Nsxn3ZceNtJG4ffINgzTIg2nrS/xZ3jX9 XV9hJVuPLR9svRjtMWwlIcBYdaXhttaPooIHbCJRVeIUwALMrQ4+YRR4iv1T0Geq wShSbWeeb1IXau5vpZNN59M4+4uAqDctrsfNAmTqSXJE8301bKg7C3KctcOlZIXC Ad7FpD3QKLTZ9zdNnZpCe6Zgw6EroVPWwSM3FjZ7XQXnkJZ7ZSBaOWi75rPMuH2S 5HckUSQrk1uFGC5I1vst7vgKkt46xC5XtA2ndxpvnjdMD3xFOzGRJ1cp6+hKhP09 RWVTZSw94kS4Z+AhCEwNTaEHCjI+z1Q2 -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:56 2025 by rpki-client